SAML for Single-Sign-On Using Windows 2012 R2

The web application contacts the CenturyLink Cloud SAML service to initiate the SAML message exchange.

The CenturyLink Cloud SP sends a digitaly signed SAML authentication request to the enterprise IP.

The IdP returns a signed SAML authentication response message to the CenturyLink Cloud SP, where it is matched to a User record.

The user is now logged into the CenturyLink Cloud Control Portal.

The enterprise user of the CenturyLink Cloud hits a URL that is dedicated to their account. The user is asked how they would like to log into the system and they choose SAML

The web application contacts the CenturyLink Cloud SAML service to initiate the SAML message exchange.

The CenturyLink Cloud SP sends a digitally signed SAML authentication request to the enterprise IdP. This IdP takes the user's Kerberos token and validates them as a user on the enterprise network.

The IdP returns a signed (and optionally, encrypted) SAML authentication response message to the CenturyLink Cloud SP. This message includes a Name ID assertion and that value is matched to a User record in the CenturyLink Cloud.

The user is logged into the CenturyLink Cloud and operates under the roles and permissions assigned to their CenturyLink Cloud user account.

CenturyLink Cloud supports the use of Security Assertion Markup Language (SAML) for exchanging user authentication data as XML between trusted parties. This industry standard protocol empowers our customers to use their own identity management system for authenticating users of the CenturyLink Cloud Control Portal.

SAML has three main parties within this flow: the user, the identity provider (IdP), and service provider (SP). The IdP is the repository that holds identity information. The SP is the party that wants to authenticate a particular user who is using an application.

Thank you for your submission. A representative will be reaching out to you within 24 hours.

First Name

Last Name

Email

Phone Number

Company (optional)

Job Title (optional)

Comments (optional)

What type of support do you need?

We have expert agents ready to assist you,
whether you're using Cloud Application Manager or any one of
the services available on the CenturyLink Cloud platform.
Click below to be directed to the appropriate team.